Multiple "buffer management errors" in OpenSSH before 3.7.1 may allow
attackers to cause a denial of service or execute arbitrary code using
(1) buffer_init in buffer.c, (2) buffer_free in buffer.c, or (3) a
separate function in channels.c, a different vulnerability than
CVE-2003-0693.